[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes for 6 September 2012 TC Meeting - updated
Time: 13:00 EDT (GMT-0400)
Tel: 513-241-0892
Access Code: 65998
Minutes for 6 September 2012 TC Meeting - updated:
(updated to correct member status)
I. Roll Call:
Voting Members:
David Brossard Axiomatics
Crystal Hayes The Boeing Company
Rich Levinson Oracle
Hal Lockhart Oracle
Erik Rissanen Axiomatics
Remon Sinnema EMC
Danny Thorpe Quest Software
John Tolbert The Boeing Company
John Davis Veterans Health Administration
Anthony Nadalin Microsoft
Members:
-
& Minutes:
Approve Minutes:
23 August 2012 TC Meeting
https://lists.oasis-open.org/archives/xacml/201208/msg00031.html
Minutes approved unanimously, no objection.
II. Administrivia
ICS 2012: The intersection of polices, standards& best practices
for robust trusted public sector cloud deployments
https://lists.oasis-open.org/archives/xacml/201208/msg00028.html
Proposed change in XACML Mtg time:
hal: https://lists.oasis-open.org/archives/xacml/201209/msg00002.html
postpone until Oct 18?
https://lists.oasis-open.org/archives/xacml/201209/msg00004.html
Will be moving TC call time slot to accommodate Steven Legg
in Australia: proposed times:
5pm EDT (when US on daylight time)
3pm EST (when US on std time)
Postpone date of time slot change to Oct 18.
Defer TC vote to Oct 4.
Public review for XACML 3.0 Export Compliance US (EC-US) Profile
Version 1.0 has been announced
https://lists.oasis-open.org/archives/xacml/201209/msg00007.html
https://lists.oasis-open.org/archives/xacml/201209/msg00009.html
Public review export compliance profile
comments on EC-US (and IPC) profiles:
steven: https://lists.oasis-open.org/archives/xacml/201209/msg00011.html
hal: duplicate organization;
john: plan to keep them in sync;
rich: thinks in general that parallel defined vocabularies are
potentially problematic, should try to find common place between
the specs
john: smaller audience for export control than ip
XACML V3.0 Committee Specification 02 (CS 02) Status
Statements of Use:
https://lists.oasis-open.org/archives/xacml/201208/msg00037.html
Oracle:
https://lists.oasis-open.org/archives/xacml/201208/msg00038.html
Quest:
https://lists.oasis-open.org/archives/xacml/201208/msg00041.html
Axiomatics:
https://lists.oasis-open.org/archives/xacml/201208/msg00042.html
ViewDS:
https://lists.oasis-open.org/archives/xacml/201208/msg00043.html
Forgerock:
https://lists.oasis-open.org/archives/xacml/201209/msg00006.html
Advancing XACML 3.0 Core towards OASIS Standard:
https://lists.oasis-open.org/archives/xacml/201209/msg00005.html
Core voted to CS02
Received 5 statements of use
Need simple resolution to accept the 5 statements of use
Remon: Motion to accept 5 statements of use.
Eric seconds motin
Motion passed w no objection to unanimous
John: Motion to request a ballot to vote for submitting CS02
to Oasis standard.
Remon seconds
Motion passed w no objection to unanimous
comments on: JSON Request/Response v1.0 WD-01 uploaded
https://lists.oasis-open.org/archives/xacml/201208/msg00033.html
JSON profile: received feedback, working on new draft
TSCP Interop Status -
Interop status
London TSCP event: Not enough support to justify
Oasis involvement
GPDIS in Phoenix: More TC vendor support likely,
more likely Oasis candidate.
Moving interop TC call to 10am PST
Hal: Not too soon to start thinking about RSA 2013.
Demo around the REST/JSON profiles?
Mike: upcoming event
mike: dept health human services
office national coordinator
stds and interop framework (S&I)
data segmentation for privacy initiative
will be demoing patient privacy
planned for HIMSS conf
office of national coordinator for health info tech
(onc sponsors interoperability showcase)
2 demos (next week onc/hl7(vocabulary)):
wanted to do rsa as well but too close
comments on: Combining Algorithms v1.0, WD-02 uploaded (w/ACKs)
steven: https://lists.oasis-open.org/archives/xacml/201208/msg00029.html
erik: https://lists.oasis-open.org/archives/xacml/201208/msg00030.html
steven: https://lists.oasis-open.org/archives/xacml/201208/msg00032.html
-> erik: believes he and steven are in agreement, w steven's updated
text; erik will post new draft
Comments on: Delegation/Policy Labeling:
steven: https://lists.oasis-open.org/archives/xacml/201208/msg00035.html
https://lists.oasis-open.org/archives/xacml/201208/msg00036.html
erik: https://lists.oasis-open.org/archives/xacml/201208/msg00044.html
steven: https://lists.oasis-open.org/archives/xacml/201209/msg00000.html
erik: https://lists.oasis-open.org/archives/xacml/201209/msg00003.html
steven: https://lists.oasis-open.org/archives/xacml/201209/msg00010.html
hal: admin and access policies: no way to use same policy for both,
which may be why we didn't have specific label for both
erik: today can do one policy for both: adds prefix to category,
there is distinction in req that infer acc vs delegate
2 types of req by diff category, so can write policy that can
key off either case;
hal: req is internal req within pdp for an evaluation; pep can't
make explicit admin req: thinks anne demo'd that it wouldn't
work;
erik: policy can be applicable to both; latest proposal is that
delegation profile make an extension;
hal: sounds like has no impact on core, so should be ok w only
new wd on admin;
(substitution group alternative approach):
steven: https://lists.oasis-open.org/archives/xacml/201209/msg00001.html
Status XACML IPC v1.0 Profile - PR Closed (20 August)
Response to public review comments:
https://lists.oasis-open.org/archives/xacml/201209/msg00008.html
III. Issues
Cloud identity ad-hoc committee:
start new TC or incorporate into XACML TC?
any updates?
rich: thinks they have agreed on charter and in process of posting
Meeting adjourned: 1:46 PM EDT
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]